SDA is the abbreviation of Static Data Authentication, which means static data authentication.
: The process of static data authentication is described as follows:
1. The issuer's key management system generates the issuer's public/private key pair PI and SI, and sends the public key PI to the root CA;
2. The root CA digitally signs the publisher's public key PI with its own private key SCA to generate the publisher's certificate, which is returned to the publisher's key management system together with the public key information of the root CA;
3. The issuer's key management system digitally signs the card static data with the issuer's private key SI, and sends the signature result and the issuer's certificate to the card issuing system;
4. The card issuing system writes the card issuing bank certificate and digital signature into each card during personalization;
5. The root CA sends its public key PCA to the terminal management system through the acquiring bank;
6. The terminal management system of the acquiring bank remotely downloads the root CA public key PCA to the terminal;
7. number seven. The IC card performs static data authentication for offline transactions, and the receiving terminal completes the following processes:
The terminal reads the issuer's certificate and signature data from the card, and recovers the issuer's public key PI with CA public key PCA;
The terminal decrypts the card signature data using the recovered public key PI of the issuing bank;
The terminal compares the decryption result with the static data of the card and saves the comparison result;
8. Return the verification result to the card.
References:
Baidu encyclopedia? the State Drug Administration (SDA)